Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 30, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
230411 6.8 警告 pnflashgames - PostNuke 用の pnFlashGames モジュールの index.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-2013 2012-12-20 18:52 2008-04-29 Show GitHub Exploit DB Packet Storm
230412 7.5 危険 postnuke software foundation - PostNuke 用の PostSchedule モジュールにおける SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-2012 2012-12-20 18:52 2008-04-29 Show GitHub Exploit DB Packet Storm
230413 7.5 危険 サン・マイクロシステムズ - Sun Java System Directory Proxy Server におけるサーバに対するアクセス制限を回避される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2008-1995 2012-12-20 18:52 2008-04-25 Show GitHub Exploit DB Packet Storm
230414 4.3 警告 pixel motion - Blog Pixel Motion の liste_article.php におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2008-1986 2012-12-20 18:52 2008-04-27 Show GitHub Exploit DB Packet Storm
230415 8.5 危険 サン・マイクロシステムズ - Sun Ray Kiosk Mode におけるルートの権限を取得される脆弱性 CWE-noinfo
情報不足 		CVE-2008-2112 2012-12-20 18:52 2008-05-5 Show GitHub Exploit DB Packet Storm
230416 9.3 危険 Yahoo! - Yahoo! Assistant の ActiveX コントロールにおける任意のコードを実行される脆弱性 CWE-399
リソース管理の問題 		CVE-2008-2111 2012-12-20 18:52 2008-05-7 Show GitHub Exploit DB Packet Storm
230417 7.5 危険 qto - QTOFileManager の qtofm.php における任意の PHP コードをアップロードされる脆弱性 CWE-20
不適切な入力確認 		CVE-2008-2110 2012-12-20 18:52 2008-05-7 Show GitHub Exploit DB Packet Storm
230418 7.5 危険 phpforge - PHP Forge の admin/news.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-2088 2012-12-20 18:52 2008-05-6 Show GitHub Exploit DB Packet Storm
230419 6.8 警告 softbiz - Softbiz Web Host Directory Script の search_result.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-2087 2012-12-20 18:52 2008-05-6 Show GitHub Exploit DB Packet Storm
230420 6.8 警告 prozilla - Prozilla Hosting Index の directory.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-2083 2012-12-20 18:52 2008-05-5 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 30, 2026, 4:16 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
352321 - ipswitch imail
imail_server 		Directory traversal vulnerability in the Web Calendaring server in Ipswitch Imail 8.13, and other versions before IMail Server 8.2 Hotfix 2, allows remote attackers to read arbitrary files via "..\" … NVD-CWE-Other
CVE-2005-1252 2008-11-15 14:46 2005-05-25 Show GitHub Exploit DB Packet Storm
352322 - ipswitch imail Stack-based buffer overflow in the IMAP server for Ipswitch IMail 8.12 and 8.13, and other versions before IMail Server 8.2 Hotfix 2, allows remote authenticated users to cause a denial of service (c… NVD-CWE-Other
CVE-2005-1254 2008-11-15 14:46 2005-05-25 Show GitHub Exploit DB Packet Storm
352323 - ipswitch imail
imail_server
ipswitch_collaboration_suite 		Multiple stack-based buffer overflows in the IMAP server in IMail 8.12 and 8.13 in Ipswitch Collaboration Suite (ICS), and other versions before IMail Server 8.2 Hotfix 2, allow remote attackers to e… NVD-CWE-Other
CVE-2005-1255 2008-11-15 14:46 2005-05-25 Show GitHub Exploit DB Packet Storm
352324 - ipswitch imail
imail_server
ipswitch_collaboration_suite 		Stack-based buffer overflow in the IMAP daemon (IMAPD32.EXE) in IMail 8.13 in Ipswitch Collaboration Suite (ICS), and other versions before IMail Server 8.2 Hotfix 2, allows remote authenticated user… NVD-CWE-Other
CVE-2005-1256 2008-11-15 14:46 2005-05-25 Show GitHub Exploit DB Packet Storm
352325 - debian ppxp ppxp does not drop root privileges before opening log files, which allows local users to execute arbitrary commands. NVD-CWE-Other
CVE-2005-0392 2008-11-15 14:43 2005-05-19 Show GitHub Exploit DB Packet Storm
352326 - cybozu collaborex
cybozu_ag
cybozu_pocket
garoon_1
mailwise 		Directory traversal vulnerability in Cybozu Collaborex, AG before 1.2(1.5), AG Pocket before 5.2(0.8), Mailwise before 3.0(0.3), and Garoon 1 before 1.5(4.1) allows remote authenticated users to read… NVD-CWE-Other
CVE-2006-4491 2008-11-11 15:28 2006-09-1 Show GitHub Exploit DB Packet Storm
352327 - cybozu cybozu_office Unspecified vulnerability in Cybozu Office 6.5 Build 1.2 for Windows allows remote attackers to obtain sensitive information, including users and groups, via unspecified vectors. NVD-CWE-Other
CVE-2006-4492 2008-11-11 15:28 2006-09-1 Show GitHub Exploit DB Packet Storm
352328 - hyper_estraier hyper_estraier estcmd in Hyper Estraier 1.0.1 on Windows systems allows remote attackers to read unauthorized files via a crafted search request for a filename that contains Unicode characters. NVD-CWE-Other
CVE-2005-3421 2008-11-11 14:55 2005-11-2 Show GitHub Exploit DB Packet Storm
352329 - hiki hiki Cross-site scripting (XSS) vulnerability in Hiki 0.8.1 to 0.8.2 allows remote attackers to inject arbitrary web script or HTML via a page name in a Login link, a different vulnerability than CVE-2005… NVD-CWE-Other
CVE-2005-2803 2008-11-11 14:53 2005-09-7 Show GitHub Exploit DB Packet Storm
352330 - hiki hiki Cross-site scripting (XSS) vulnerability in Hiki 0.8.0 to 0.8.2 allows remote attackers to inject arbitrary web script or HTML via "missing pages" in which the page name is not properly escaped, a di… NVD-CWE-Other
CVE-2005-2336 2008-11-11 14:51 2005-09-7 Show GitHub Exploit DB Packet Storm